Uploaded byYbhh
PPTX, PDF3,025 views

Cloud federation.pptx

This document discusses cloud federation, which allows independent cloud providers to share resources and balance loads. There are four levels of federation: permissive (no verification), verified (identity verified via DNS), encrypted (TLS-encrypted connection with weak identity verification), and trusted (TLS-encrypted with strong authentication using trusted certificates). Cloud federation provides benefits like efficient resource use, load balancing, failure prevention, and avoiding vendor lock-in.

Embed presentation

Downloaded 10 times
Cloud Federation
Why Cloud Federation? • Capacity Management • Load Balancing • Efficient use of Surplus Resources • Prevention from Power Outages & Failures • Prevention from Vendor Lock-ins • Scaling Data to Other CSPs(Cloud Service Provider)
Why Cloud Federation?
Cloud Federation
Cloud federation Cloud federation manages consistency and access controls when two or more independent geographically distinct Clouds share either authentication, files, computing resources, command and control or access to storage resources.
Federated Cloud • Federated cloud is also called as cloud Federation. • Federation means the union of small parts that do common work. • It is the concept of brining different services offered by various providers under a single platform. • It is a multi-national cloud system that integrates community , private , public clouds into scalable computing platform. • It is the deployment and management of multiple external and internal cloud computing services to match business needs.
Cloud federation • It is the practice of interconnecting the cloud computing environments of two or more service providers for the purpose of load balancing traffic and accommodating spikes in demand. • It requires one provider to wholesale or rent computing resources to another cloud provider. • Those resources become a temporary or permanent extension of the buyer’s cloud computing environment, depending on the specific federation agreement between providers.
Federation in the Cloud • One challenge in creating and managing a globally centralized cloud computing environment is maintaining consistent connectivity between untrusted components while remaining fault-tolerant. • A key opportunity for the emerging cloud industry will be in defining a federated cloud ecosystem by connecting multiple cloud providers using a common standard
Federation in the Cloud • A notable research project being conducted by Microsoft, called the Geneva Framework, focuses on issues involved in cloud federation. • Many believe that those barriers can be overcome by eXtensible Messaging and Presence Protocol(XMPP), also called Jabber, as the protocol that will fuel the Software – as – a – Service(SaaS) models of tomorrow. • Google, Apple, AOL,IBM,Livejournal, and Jive have all incorporated this protocol into their cloud-based solutions in the last few years.
• XMPP’s advantage: – It is decentralized, meaning anyone may set up an XMPP server. – It is based on open standards – It is mature – multiple implementations of client and servers exist – Robust security is supported via Simple Authentication and Security Layer(SASL) and Transport Layer Security(TLS) – It is flexible and designed to be extended.
Federation in the Cloud • XMPP is good fit for cloud computing because – It allows for easy two way communication – It eliminates the need for polling – It has rich publish subscribe(pub-sub) functionality built in – It is XML-based and easily extensible, perfect for both new IM features and custom cloud services. – It is efficient and has been proven to scale to millions of concurrent users on a single service(such as Google’s Gtalk) – It also has a built-in world wide federation model
Cloud Federation Stack
Four levels of Federation • Permissive federation • Verified federation • Encrypted federation • Trusted federation
Permissive federation • Permissive federation occurs when server accepts a connection from a peer network server without verifying its identity using DNS lookups or certificate checking. • The lack of verification or authentication may lead to domain spoofing( the unauthorized use of a third-party domain name in an email message in order to pretend to be someone else), which opens the door to widespread spam and other abuses. • With the release of the open source jabbered 1.2 server in October 2000, which included support for the Server Dialback protocol( fully supported in Jabber XCP), permissive federation met its demise on the XMPP network.
Verified federation • This type of federation occurs when a server accepts a connection from a peer after the identity of the peer has been verified. • It uses information obtained via DNS and by means of domain-specific keys exchanged beforehand • The connection is not encrypted, and the use of identity verification effectively prevents domain spoofing • To make this work, federation requires proper DNS setup, and that is still subject to DNS poisoning attacks • Verified federation has been the default service policy on the open XMPP since the release of the open-source jabbered 1.2 server.
Encrypted Federation • In this mode, a server accepts a connection from peer if and only if the peer supports Transport Layer Security(TLS) as defined for XMPP in Request for Comments(RFC) 3920 • The peer must present a digital certificate • The certificate may be self-signed , but this prevents using mutual authentication • If this is the case, both parties proceed to weakly verify identity using Server Dialback • XEP-0220 defines the Server Dialback protocol, which is used between XMPP servers to provide identity verfication.
Encrypted federation • Server Dialback uses the DNS as the basis for verifying identity; the basic approach is that when a receiving server receives a server to server connection request from an originating server, it does not accept the request until it has verified a key with an authoritative server for the domain asserted by the originating server. • Although Server Dialback does not provide strong authentication or trusted federation, and although it is subject to DNS poisoning attacks, it has effectively prevented most instances of address spoofing on the XMPP network since its release in 2000 • This results in an encryp ted connection with weak identity verification
Trusted federation • Here, a server accepts a connection from peer only under the stipulation that the peer supports TLS and the peer can present a digital certificate issued by a root certification authority(CA) that is trusted by the authenticating server. • The list of trusted root CA s may be determined by one or more factors, such as the operating system, XMPP server software, or local service policy. • In trusted federation, the use of digital certificates results not only in a channel encryption but also in strong authentication • The use of trusted domain certtificates effectively prevents DNS poisoning attacks but makes federation more difficult, since such certificates have traditionally not been easy to obtain.
Cloud federation.pptx
Cloud federation.pptx
Cloud federation.pptx
Cloud federation.pptx
Cloud federation.pptx
Cloud federation.pptx
Cloud federation.pptx
Cloud federation.pptx

More Related Content

PPTX
Market oriented Cloud Computing
byJithin Parakka
 
PPTX
Cloud computing using Eucalyptus
byAbhishek Dey
 
PPTX
Layers and types of cloud
byANUSUYA T K
 
PPT
Group Communication (Distributed computing)
bySri Prasanna
 
PPT
Distributed computing
byAlokeparna Choudhury
 
PPTX
Unit 1
byBaskarkncet
 
PPTX
Fundamental cloud security
byAsmaa Ibrahim
 
PPTX
Lecture 1-introduction to distributed computing.pptx
byssusere05ec21
 
Market oriented Cloud Computing
byJithin Parakka
 
Cloud computing using Eucalyptus
byAbhishek Dey
 
Layers and types of cloud
byANUSUYA T K
 
Group Communication (Distributed computing)
bySri Prasanna
 
Distributed computing
byAlokeparna Choudhury
 
Unit 1
byBaskarkncet
 
Fundamental cloud security
byAsmaa Ibrahim
 
Lecture 1-introduction to distributed computing.pptx
byssusere05ec21
 

What's hot

PPTX
Common Standards in Cloud Computing
bymrzahidfaiz.blogspot.com
 
PPT
Middleware
byDr. Uday Saikia
 
PPTX
Client server architecture
byBhargav Amin
 
PDF
PAC Learning
bySanghyuk Chun
 
PPT
Communications is distributed systems
bySHATHAN
 
PPTX
Unit5 Cloud Federation,
byIntegral university, India
 
PPTX
Io t system management with
byxyxz
 
PPTX
Scheduling in Cloud Computing
byHitesh Mohapatra
 
PPT
Peer to Peer services and File systems
byMNM Jain Engineering College
 
PPTX
Routing algorithm
byBushra M
 
PPTX
Database , 4 Data Integration
byAli Usman
 
PDF
The CAP Theorem
byAleksandar Bradic
 
PPT
System models in distributed system
byishapadhy
 
PPT
Block Cipher and its Design Principles
bySHUBHA CHATURVEDI
 
PPT
Unit 3 -Data storage and cloud computing
byMonishaNehkal
 
PPTX
Virtual machine security
byJacob Zvirikuzhe
 
DOCX
Levels of Virtualization.docx
bykumari36
 
PPTX
Message passing in Distributed Computing Systems
byAlagappa Govt Arts College, Karaikudi
 
PPTX
Cloud Reference Model
byDr. Ramkumar Lakshminarayanan
 
PPT
distributed shared memory
byAshish Kumar
 
Common Standards in Cloud Computing
bymrzahidfaiz.blogspot.com
 
Middleware
byDr. Uday Saikia
 
Client server architecture
byBhargav Amin
 
PAC Learning
bySanghyuk Chun
 
Communications is distributed systems
bySHATHAN
 
Unit5 Cloud Federation,
byIntegral university, India
 
Io t system management with
byxyxz
 
Scheduling in Cloud Computing
byHitesh Mohapatra
 
Peer to Peer services and File systems
byMNM Jain Engineering College
 
Routing algorithm
byBushra M
 
Database , 4 Data Integration
byAli Usman
 
The CAP Theorem
byAleksandar Bradic
 
System models in distributed system
byishapadhy
 
Block Cipher and its Design Principles
bySHUBHA CHATURVEDI
 
Unit 3 -Data storage and cloud computing
byMonishaNehkal
 
Virtual machine security
byJacob Zvirikuzhe
 
Levels of Virtualization.docx
bykumari36
 
Message passing in Distributed Computing Systems
byAlagappa Govt Arts College, Karaikudi
 
Cloud Reference Model
byDr. Ramkumar Lakshminarayanan
 
distributed shared memory
byAshish Kumar
 

Similar to Cloud federation.pptx

PPTX
XMPP-IoT Protocol designed mainly to send mesages
byssuserd1be3f1
 
PPT
Cloud computing protocol
byKartik Kalpande Patil
 
PDF
Skype
byAbhishek Jaisingh
 
PPTX
Topic 5- Communications v1.pptx
byDanishMahmood23
 
DOCX
Protocols in computer network
bypriya sehgal
 
PDF
Microsoft NetMeeting and Windows XP Video Conferencing vs
byVideoguy
 
PPTX
XMPP and SIP Presence Protocols for Messaging and Session Control.pptx
byGSCWU
 
PDF
Modern VoIP in modern infrastructures
byGiacomo Vacca
 
PDF
Internet of things protocols for resource constrained applications
byPokala Sai
 
PPTX
network protocol | Networking by Nitasha Chaturvedi
bynitashach22
 
PPTX
AnyConnect Gateway by Eyeball Networks
byEyeball Networks
 
DOCX
Network management
byNitesh Saitwal
 
PPTX
Cloud Computing Fundamentals and its applications
byARUN791267
 
PPT
Presentation To Vo Ip Round Table V2
byWarren Bent
 
PPT
Authenticated Identites in VoIP Call Control
byWarren Bent
 
PDF
Protocol and Integration Challenges for SDN
byGerardo Pardo-Castellote
 
PDF
Secure Communications with Jabber
bystpeter
 
PDF
Os Saintandre
byoscon2007
 
PPT
Cloudcamp- The World Wide Cloud
byReuven Cohen
 
PPT
Open Source XMPP for Cloud Services
bymattjive
 
XMPP-IoT Protocol designed mainly to send mesages
byssuserd1be3f1
 
Cloud computing protocol
byKartik Kalpande Patil
 
Skype
byAbhishek Jaisingh
 
Topic 5- Communications v1.pptx
byDanishMahmood23
 
Protocols in computer network
bypriya sehgal
 
Microsoft NetMeeting and Windows XP Video Conferencing vs
byVideoguy
 
XMPP and SIP Presence Protocols for Messaging and Session Control.pptx
byGSCWU
 
Modern VoIP in modern infrastructures
byGiacomo Vacca
 
Internet of things protocols for resource constrained applications
byPokala Sai
 
network protocol | Networking by Nitasha Chaturvedi
bynitashach22
 
AnyConnect Gateway by Eyeball Networks
byEyeball Networks
 
Network management
byNitesh Saitwal
 
Cloud Computing Fundamentals and its applications
byARUN791267
 
Presentation To Vo Ip Round Table V2
byWarren Bent
 
Authenticated Identites in VoIP Call Control
byWarren Bent
 
Protocol and Integration Challenges for SDN
byGerardo Pardo-Castellote
 
Secure Communications with Jabber
bystpeter
 
Os Saintandre
byoscon2007
 
Cloudcamp- The World Wide Cloud
byReuven Cohen
 
Open Source XMPP for Cloud Services
bymattjive
 

Recently uploaded

PDF
Industrial RFID Landscape for 2025 - Readers, Tags, Antennas, Printers, etc
byRich Rogers
 
PDF
The map to conquer linear algebra for IT engineer
byakipii ogaoga
 
PPT
HDTV and DTV Standards: The United States Opts for a Digital HDTV Standard
byJeffrey Hart
 
PDF
“Lessons from Yesterday's Tomorrowland” by Scott M. Graffius
byScott M. Graffius
 
PPTX
Salesforce Spring 26 Release Key .pptx
byMehediHasan939830
 
PDF
Digital Marketing Trends in 2026: AI, Data, Content & Future Growth
byConacent Consulting
 
PDF
AI Infrastructure and the Compute Gap - Matt Dratch
byRazin Mustafiz
 
PDF
A Brief Introduction About Christopher Elwell Woburn
byChristopher Elwell Woburn
 
PDF
Groq Series A Investment Memo - Chamath Palihapitiya
byRazin Mustafiz
 
PPTX
Spacecraft Guidance Quick Research Guide by Arthur Morgan
byArthur Morgan
 
PDF
What Cybersecurity Threats Are Rising for Australian Firms in 2025?
byElevate
 
PDF
IAC 500 Sensor - Humidity Measurement Device
byCS Instruments
 
PPTX
UNIT III TYPOLOGY OF CRIME AND CRIMINAL BEHAVIOUR (1).pptx
bybloodyhumanoid
 
PDF
_OSHA102_U06_Chemical Safety and Hazard Communication_ 001 (1) (1).pdf
bygwgqpkb
 
PPTX
AI Bot Traffic Surge: Retail Fraud Threat for Age-Restricted Websites
byFTx Identity
 
DOCX
Top Websites To ⭐Buy ⭐Old ⭐Gmail ⭐Accounts (PVA & Bulk) (5).docx
byBuy Old Gmail Accounts
 
PDF
250 Prompts - ChatGPT acting as your Assistant
byMihir Nagarkar
 
PDF
Measuring Fidelity Decay: How Meaning Collapses in Generative AI Systems
bySemantic Fidelity Lab
 
PDF
The Next10 Exponential Innovation 2026 TH
bypantapong
 
PDF
Stop Calling It Hallucination: Semantic Drift as AI’s Real Failure Mode
bySemantic Fidelity Lab
 
Industrial RFID Landscape for 2025 - Readers, Tags, Antennas, Printers, etc
byRich Rogers
 
The map to conquer linear algebra for IT engineer
byakipii ogaoga
 
HDTV and DTV Standards: The United States Opts for a Digital HDTV Standard
byJeffrey Hart
 
“Lessons from Yesterday's Tomorrowland” by Scott M. Graffius
byScott M. Graffius
 
Salesforce Spring 26 Release Key .pptx
byMehediHasan939830
 
Digital Marketing Trends in 2026: AI, Data, Content & Future Growth
byConacent Consulting
 
AI Infrastructure and the Compute Gap - Matt Dratch
byRazin Mustafiz
 
A Brief Introduction About Christopher Elwell Woburn
byChristopher Elwell Woburn
 
Groq Series A Investment Memo - Chamath Palihapitiya
byRazin Mustafiz
 
Spacecraft Guidance Quick Research Guide by Arthur Morgan
byArthur Morgan
 
What Cybersecurity Threats Are Rising for Australian Firms in 2025?
byElevate
 
IAC 500 Sensor - Humidity Measurement Device
byCS Instruments
 
UNIT III TYPOLOGY OF CRIME AND CRIMINAL BEHAVIOUR (1).pptx
bybloodyhumanoid
 
_OSHA102_U06_Chemical Safety and Hazard Communication_ 001 (1) (1).pdf
bygwgqpkb
 
AI Bot Traffic Surge: Retail Fraud Threat for Age-Restricted Websites
byFTx Identity
 
Top Websites To ⭐Buy ⭐Old ⭐Gmail ⭐Accounts (PVA & Bulk) (5).docx
byBuy Old Gmail Accounts
 
250 Prompts - ChatGPT acting as your Assistant
byMihir Nagarkar
 
Measuring Fidelity Decay: How Meaning Collapses in Generative AI Systems
bySemantic Fidelity Lab
 
The Next10 Exponential Innovation 2026 TH
bypantapong
 
Stop Calling It Hallucination: Semantic Drift as AI’s Real Failure Mode
bySemantic Fidelity Lab
 

Cloud federation.pptx

  • 1.
  • 2.
    Why Cloud Federation? •Capacity Management • Load Balancing • Efficient use of Surplus Resources • Prevention from Power Outages & Failures • Prevention from Vendor Lock-ins • Scaling Data to Other CSPs(Cloud Service Provider)
  • 3.
  • 4.
  • 5.
    Cloud federation Cloud federationmanages consistency and access controls when two or more independent geographically distinct Clouds share either authentication, files, computing resources, command and control or access to storage resources.
  • 6.
    Federated Cloud • Federatedcloud is also called as cloud Federation. • Federation means the union of small parts that do common work. • It is the concept of brining different services offered by various providers under a single platform. • It is a multi-national cloud system that integrates community , private , public clouds into scalable computing platform. • It is the deployment and management of multiple external and internal cloud computing services to match business needs.
  • 7.
    Cloud federation • Itis the practice of interconnecting the cloud computing environments of two or more service providers for the purpose of load balancing traffic and accommodating spikes in demand. • It requires one provider to wholesale or rent computing resources to another cloud provider. • Those resources become a temporary or permanent extension of the buyer’s cloud computing environment, depending on the specific federation agreement between providers.
  • 8.
    Federation in theCloud • One challenge in creating and managing a globally centralized cloud computing environment is maintaining consistent connectivity between untrusted components while remaining fault-tolerant. • A key opportunity for the emerging cloud industry will be in defining a federated cloud ecosystem by connecting multiple cloud providers using a common standard
  • 9.
    Federation in theCloud • A notable research project being conducted by Microsoft, called the Geneva Framework, focuses on issues involved in cloud federation. • Many believe that those barriers can be overcome by eXtensible Messaging and Presence Protocol(XMPP), also called Jabber, as the protocol that will fuel the Software – as – a – Service(SaaS) models of tomorrow. • Google, Apple, AOL,IBM,Livejournal, and Jive have all incorporated this protocol into their cloud-based solutions in the last few years.
  • 10.
    • XMPP’s advantage: –It is decentralized, meaning anyone may set up an XMPP server. – It is based on open standards – It is mature – multiple implementations of client and servers exist – Robust security is supported via Simple Authentication and Security Layer(SASL) and Transport Layer Security(TLS) – It is flexible and designed to be extended.
  • 11.
    Federation in theCloud • XMPP is good fit for cloud computing because – It allows for easy two way communication – It eliminates the need for polling – It has rich publish subscribe(pub-sub) functionality built in – It is XML-based and easily extensible, perfect for both new IM features and custom cloud services. – It is efficient and has been proven to scale to millions of concurrent users on a single service(such as Google’s Gtalk) – It also has a built-in world wide federation model
  • 12.
  • 13.
    Four levels ofFederation • Permissive federation • Verified federation • Encrypted federation • Trusted federation
  • 14.
    Permissive federation • Permissivefederation occurs when server accepts a connection from a peer network server without verifying its identity using DNS lookups or certificate checking. • The lack of verification or authentication may lead to domain spoofing( the unauthorized use of a third-party domain name in an email message in order to pretend to be someone else), which opens the door to widespread spam and other abuses. • With the release of the open source jabbered 1.2 server in October 2000, which included support for the Server Dialback protocol( fully supported in Jabber XCP), permissive federation met its demise on the XMPP network.
  • 15.
    Verified federation • Thistype of federation occurs when a server accepts a connection from a peer after the identity of the peer has been verified. • It uses information obtained via DNS and by means of domain-specific keys exchanged beforehand • The connection is not encrypted, and the use of identity verification effectively prevents domain spoofing • To make this work, federation requires proper DNS setup, and that is still subject to DNS poisoning attacks • Verified federation has been the default service policy on the open XMPP since the release of the open-source jabbered 1.2 server.
  • 16.
    Encrypted Federation • Inthis mode, a server accepts a connection from peer if and only if the peer supports Transport Layer Security(TLS) as defined for XMPP in Request for Comments(RFC) 3920 • The peer must present a digital certificate • The certificate may be self-signed , but this prevents using mutual authentication • If this is the case, both parties proceed to weakly verify identity using Server Dialback • XEP-0220 defines the Server Dialback protocol, which is used between XMPP servers to provide identity verfication.
  • 17.
    Encrypted federation • ServerDialback uses the DNS as the basis for verifying identity; the basic approach is that when a receiving server receives a server to server connection request from an originating server, it does not accept the request until it has verified a key with an authoritative server for the domain asserted by the originating server. • Although Server Dialback does not provide strong authentication or trusted federation, and although it is subject to DNS poisoning attacks, it has effectively prevented most instances of address spoofing on the XMPP network since its release in 2000 • This results in an encryp ted connection with weak identity verification
  • 18.
    Trusted federation • Here,a server accepts a connection from peer only under the stipulation that the peer supports TLS and the peer can present a digital certificate issued by a root certification authority(CA) that is trusted by the authenticating server. • The list of trusted root CA s may be determined by one or more factors, such as the operating system, XMPP server software, or local service policy. • In trusted federation, the use of digital certificates results not only in a channel encryption but also in strong authentication • The use of trusted domain certtificates effectively prevents DNS poisoning attacks but makes federation more difficult, since such certificates have traditionally not been easy to obtain.